[grsec] Text Relocations
pageexec at freemail.hu
pageexec at freemail.hu
Mon Dec 13 09:35:14 EST 2004
> Recently, while testing grsecurity, I turned on audit_textrel using sysctl. I
> was surprised to see many standard executables showing up in the log,
> e.g., /bin/mv, because of "text relocation". I don't fully understand all of
> this, but I assume text relocations are "a bad thing". How do I go about
> getting rid of this, for example in /bin/mv.
in general hunting down and fixing textrelocs requires some detective
work and quite a bit of understanding of how the toolchain works. if you
want to do it yourself, let me know and i'll try to dig up what i wrote
to some gentoo hardened people a while ago. you should also enter this
and other cases into the gentoo bugzilla so that the devs are aware of
it.
> Dec 13 17:34:04 amoeba PAX: execution attempt in: <anonymous mapping>,
> 27cf9000-27d01000 27cf9000
> Dec 13 17:34:04 amoeba PAX: terminating task: /usr/bin/mono(mono):6398,
mono generates code at runtime and hence it's fundamentally incompatible
with PaX -> paxctl -spm /usr/bin/mono (maybe it'll need -r as well).
More information about the grsecurity
mailing list